Posts tagged

Security

Apr 27, 2026 HB

STIG Manager Reflected XSS: CVE-2026-41200 — Critical OIDC Error Handling Flaw Enables Session Theft

STIG Manager is a critical compliance tool used by military and government IT teams to manage Security Technical Implementation Guide assessments. Versions 1.5.10 through 1.6.7 contained a reflected XSS vulnerability that turned routine OIDC authentication error handling into a …

Vulnerability Web-Security Reverse-Engineering Cross-Site-Scripting OIDC Security STIG-Manager

Tags

Android Android-Adb Android-apktool Android-Avd Android-Studio Anti-Bot Automotive Baseband C2 CAN-Bus Container-Escape Cross-Site-Scripting Data-Scraping Exploit Frida Geolocation GooglePlay Hardware HTTP2 Identity-Confusion Information Security JNI Linux Linux-Kernel Memory Disclosure mitmproxy Mobile-Security Network-Analysis Networking OAuth OBD2 OIDC Out-of-Bounds Page-Cache Penetration Testing Playwright Privilege-Escalation Python Race-Condition Reverse-Engineering Samsung-Exynos Security Security-Research Session Hijacking SMS Snapchat SSL-Pinning STIG-Manager Vulnerability Web Applications Web-Crawling Web-Security Zero-Day